Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
File: 001KO3R_ynAQOxfz29xQRcrOMt8.mft (raw, json)
Hash identifier: UwN7OtCXE9Idy41ny4djFMD3PU45nOxPd+WZoV6GzFw=
Subject key identifier: 3F:83:7B:58:B7:91:54:E7:EE:74:04:61:FA:B0:0C:04:DE:CC:21:E2
Authority key identifier: D3:4D:4A:3B:74:7F:CA:70:10:3B:17:F3:DB:DC:50:45:CA:CE:32:DF
Certificate issuer: /CN=d34d4a3b747fca70103b17f3dbdc5045cace32df
Certificate serial: 019E1FB5D0B68F896F30A8B661650FD93EEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
Manifest number: 1908
Signing time: Wed 13 May 2026 05:01:09 +0000
Manifest this update: Wed 13 May 2026 05:01:09 +0000
Manifest next update: Thu 14 May 2026 05:01:09 +0000
Files and hashes: 1: 001KO3R_ynAQOxfz29xQRcrOMt8.crl (hash: Df0ZIpCxqzqR4EYPYUPGs2pjtJipucDSDN9MdBqjQ5Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 05:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:b5:d0:b6:8f:89:6f:30:a8:b6:61:65:0f:d9:3e:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d34d4a3b747fca70103b17f3dbdc5045cace32df
Validity
Not Before: May 13 05:01:09 2026 GMT
Not After : May 14 05:01:09 2026 GMT
Subject: CN=3f837b58b79154e7ee740461fab00c04decc21e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a1:92:78:cc:0c:50:54:3e:44:93:2c:fa:f2:
25:53:ee:6b:fa:b0:26:34:a4:29:19:29:b0:64:cf:
69:4c:44:0d:57:a4:3a:17:d7:51:1b:42:33:43:06:
6c:e8:82:c9:6c:3a:cd:19:e3:2a:4a:08:6f:89:1f:
06:94:22:7e:55:a3:c7:e3:34:5b:d5:3c:0c:75:bb:
7d:67:e2:3f:2c:67:8f:e2:a0:92:e8:44:64:4c:9f:
8f:00:fb:bf:7b:6d:e2:85:86:c5:0c:9e:d2:ed:6b:
8d:ba:e3:a9:1a:3b:99:e7:d9:0b:af:bb:b0:5a:37:
0d:2c:81:42:46:aa:d4:c3:92:7f:c0:f5:30:e0:b5:
ae:cf:4a:db:0f:1f:e5:4c:34:cf:ea:33:b8:7e:99:
07:ff:94:e1:8d:91:4b:30:6c:d0:a4:49:c7:a9:39:
b7:f2:c8:e4:ec:e1:d0:5c:2c:b0:0b:53:81:77:0e:
41:b8:94:15:02:f6:ae:38:d5:fd:91:2b:ac:7d:36:
c7:63:12:07:d0:54:83:68:8c:76:f4:e7:f0:e4:06:
ce:a8:c1:94:13:47:2c:eb:fa:94:80:32:bd:86:82:
07:38:e0:a1:e3:26:81:81:5f:36:5e:4a:3a:88:5d:
38:2e:2d:3d:48:18:79:6c:08:d6:d1:0d:f2:4c:21:
ba:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:83:7B:58:B7:91:54:E7:EE:74:04:61:FA:B0:0C:04:DE:CC:21:E2
X509v3 Authority Key Identifier:
keyid:D3:4D:4A:3B:74:7F:CA:70:10:3B:17:F3:DB:DC:50:45:CA:CE:32:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:68:72:0e:f7:6b:b7:1f:a9:40:28:e3:60:53:34:97:db:b2:
0b:d2:df:8c:ec:0c:a2:69:c5:f6:eb:97:c6:65:d9:3e:e4:98:
9b:66:ae:9c:a7:cb:92:46:5d:eb:4c:9c:79:a0:e3:9a:2c:4f:
70:83:48:3d:03:0a:72:bd:2a:c3:f4:f7:e0:72:c9:2f:d5:ec:
aa:cb:88:6b:88:e9:be:d1:4f:16:22:af:7f:3e:b1:d2:bc:41:
2f:0d:68:53:8a:07:df:03:14:79:59:14:01:d7:5d:20:24:bb:
4b:8a:15:73:c8:8d:97:87:db:19:34:ca:12:97:38:d2:73:cc:
74:6a:c5:53:09:32:a6:87:8c:34:39:bb:36:63:d7:35:d0:52:
85:f0:4d:b4:e6:41:c7:79:4c:58:3d:b8:7b:5f:6f:76:4e:33:
f3:04:3f:50:30:39:30:c4:74:ca:e3:a4:7d:bd:4a:e1:e1:4d:
a1:0f:df:3b:f7:f7:a4:7a:d0:1c:82:4a:05:33:a4:8e:52:af:
1e:f8:45:f1:96:77:1f:21:64:f6:2e:f8:c6:4b:d7:b0:55:36:
2d:6a:c7:85:4e:e3:10:2b:22:c5:53:d9:a9:2d:96:40:52:47:
57:85:c9:7d:6b:c0:37:f5:f7:f5:1d:3d:72:95:1b:47:7b:f9:
ca:41:9f:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:10:11 2026 by rpki-client